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WIRELESS ONLINE CRYPTOGRAPHIC KEY GENERATION METHOD 

FIELD OF THE INVENTION 

[0001] The present invention relates generally to secured wireless communications, and 
more particularly to cryptographic key exchanges for encrypted wireless communications. 

BACKGROUND OF THE INVENTION 

[0002] It has long been known that wireless communications provide significant benefits 
in terms of user mobility and convenience. With the recent advances in wireless 
communication protocols, wireless device battery life, and other supporting technologies, the 
application of such wireless communications into the computing environment has greatly 
increased productivity and convenience for computer users, both at the professional and 
home consumer level. Indeed, the high data rates available through modern wireless 
communication protocols has enabled corporate users to embrace such wireless computing 
capabilities for their computing infrastructure. Indeed, the ability to form ad hoc wireless 
networks in addition to the ability to connect in an infrastructure mode to a corporate 
computer network allows corporate workers to collaborate, share documents, and conduct 
productive meetings without the hassles and constraints imposed by a wired only computer 
network. These mobile computing users may now have complete access to their network 
resources regardless of their physical location within the corporation. Still further, in an ad 
hoc mode, mobile computing users may conduct meetings at remote sites, such as an airport, 
with other wireless computing users. Indeed, such ad hoc wireless networks may be formed 
with corporate employees as well as customers or other visitors to a corporation. The internal 
security mechanisms will then ensure that the customer or other visitor may participate in the 
ad hoc meeting, but cannot gain access to the wired corporate infrastructure of the 
corporation. 
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[0003] Unfortunately, the broadcast nature of wireless communications exposes a 
significant threat that the information exchanged during such communications may be 
intercepted by malicious third parties. That is, because the information exchanged during a 
wireless computing session is broadcast wirelessly through the air to the other participants in 
the wireless computing session, a malicious entity can also receive this information. Such a 
malicious entity can then learn valuable information, including personal, financial, business 
information and passwords that may expose a further risk to the corporate computing 
infrastructure or the home computer network. While it may be impossible to prevent a 
malicious eavesdropper from receiving the wireless transmission, it is relatively east to 
protect the content of these broadcasts through simple encryption techniques that are well- 
known and practiced currently in the wireless communications arts. That is, while a 
malicious eavesdropper may still be able to intercept the wireless communication 
transmission, since the information being transmitted is encrypted, this malicious 
eavesdropper cannot decipher the information that he has intercepted. Indeed, modern 
private key encryption techniques effectively register the interception of such encrypted 
transmissions completely useless, garbled data. As such, most sensitive and corporate 
wireless computing communications utilize some form of data encryption for all data 
exchanged in a wireless computing session. 

[0004] As is well-known in the art, such data encryption methods utilize a shared key or 
secret known only to the authorized participants in the wireless communication session. In 
this way, each party can encrypt its information prior to transmitting it wirelessly to the other 
participants in the computing session who then each use the shared secret or key to encrypt 
the information for use. Any malicious third party eavesdropper receiving this wireless 
broadcast is unable to decrypt this information since he is not privy to the secret or key 
known by the authorized users. However, for the system to work, each of the authorized uses 
in the wireless computing session must know the shared secret or key. The problem 
becomes, therefore, how to communicate this shared secret or key to each of the authorized 
participants in a wireless computing system without inadvertently disclosing this key to a 
malicious third party eavesdropper. Currently, this problem is handled in various ways, all of 
which detract from the benefits provided by wireless communications itself. That is, one 
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method of exchanging the shared secret or key is to require each of the participants to 
physically couple to a wired network so that the key can be exchanged among the participants 
of the wireless computing session. However, requiring the participants of a wireless 
computing session to first physically couple their wireless computing devices together via a 
wire is burdensome and not desired by wireless computer users. Alternatively, the shared 
secret or key may be exchanged between the participants in an offline manner, such as though 
voice communication, the passing of notes, etc., however, these techniques are also 
undesired, and are more prone to inadvertent discovery by a malicious third party. Shared 
secret or key exchanges may also be made through close range infrared (IR) communications 
between the wireless computing devices. However, such techniques also entail a certain 
amount of risk that the IR transmission may be intercepted by a malicious third party 
eavesdropper unless extraordinary measures are taken during this shared secret or key 
exchange. At the corporate level, wireless computing users may be required to first log in to 
their wired computing network via a docking station or LAN cable adapter to receive the 
infrastructure shared secret or key for the day before they are able to begin wireless 
computing at work. Once again, such requirements for wired communications prior to 
engaging in secure wireless communications complicates the process, deters users from 
engaging in such wireless communications, and significantly detracts from the advantages 
provided through such advanced wireless communications technologies. 

[0005] There exists, therefore, a need in the art for a method of key exchange or 
generation that fully utilizes wireless communication and eliminates the requirement for 
offline key exchange, wired key exchange, or other cumbersome mechanisms to 
communicate a shared secret or key among authorized users of a wireless computing 
network. 

[0006] There exists, therefore, a need in the art for a peer-to-peer identity management 
interface that addresses the above-described and other problems existing in the art. 
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BRIEF SUMMARY OF THE INVENTION 

[0007] The inventive concepts disclosed in this application involve a new and improved 
system and method for cryptographic key exchange among participants in a wireless 
computing network. More particularly, the present invention in directed to a new and 
improved system and method for wireless online cryptographic key generation whereby the 
authorized participants in the wireless communication session need not have the same key 
before the wireless computing session begins. Even more specifically, the system and 
method of the present invention provide a new cryptographic wireless communication 
scheme based on a the availability of a set of modulation techniques and a domino match. 
This allows large keys to be established with little complexity, and forces a third party 
malicious eavesdropper into an exhaustive key search to break the encryption of the wireless 
communication utilizing the generated key. The eavesdropper view of modulation selection 
is random. This method may be implemented as part of the native 802.1 1 scenario developed 
for wireless computing devices, and can be applied to all wireless communication techniques 
where multiple modulation schemes can apply. 

[0008] In one embodiment of the present invention, a suite of wireless communication 
modulation techniques are made available to the wireless computing users. The system and 
method of the present invention then varies the modulation technique utilized to transmit data 
packets containing information from which the cryptographic key may be generated. Such 
modulation techniques available in the suite includes for example, BPSK at 6 and 9 megabits 
per second data rates, QPSK at 12 and 1 8 megabits per second, 16 QAM at 27 megabits per 
second, 16 QAM (IEEE) at 24 megabits per second, 16 QAM at 36 megabits per second, 64 
QAM at 54 megabits per second, and 64 QAM (IEEE) at 48 megabits per second. A feature 
of the invention, therefore, is a randomizing the selection of the modulation technique used 
by each transmission of packets by following a domino pattern. That is, at one time 
modulation may be 16 QAM, at another time the modulation is 8 PSK, then followed by 64 
QAM, and so forth. A third party malicious eavesdropper trying to decode these schemes 
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and not knowing which modulation is used will have to guess which scheme is being 
selected. As such, there is a high probability that such a malicious eavesdropper will arrive at 
a cryptographic sequence mismatched with the one utilized by the authorized participants. 
These authorized participants are able to determine what modulation to use for succeeding 
packets by each user. This is accomplished in one embodiment of the present invention by 
including information in the transmitted packet dictating to the other user what technique to 
select in the next transmission. This modulation transmission selection may be governed by 
the total number of bits required to complete the transmission for the cryptographic key 
generation. 



BRIEF DESCRIPTION OF THE DRAWINGS 

[0009] The accompanying drawings incorporated in and forming a part of the 
specification illustrate several aspects of the present invention, and together with the 
description serve to explain the principles of the invention. In the drawings: 

[0010] FIG. 1 is a block diagram generally illustrating an exemplary computer system on 
which the present invention may reside; 

[0011] FIG. 2 is a simplified wireless environment diagram illustrating infrastructure and 
ad hoc wireless network connections secured by an embodiment of the system and methods 
of the present invention; 

[0012] FIG. 3 is a simplified communications diagram illustrating communication 
between two hosts via a physical channel; 

[0013] FIG. 4 is a block diagram of the ISO model for host-to-host communications; 

[0014] FIG. 5 is a block diagram of a digital communications system that may benefit 
from the system and method of the present invention; 
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[0015] FIG. 6 is a modulation phase diagram illustrating data transmission utilizing 
binary phase shift keying (BPSK); 

[0016] FIG. 7 is a modulation phase diagram illustrating data transmission utilizing 
quadrature phase shift keying (QPSK); 

[0017] FIG. 8 is a simplified communications diagram illustrating an embodiment of the 
wireless online cryptographic key generation method of the present invention; and 

[0018] FIG. 9 is a graphical illustration of one embodiment of an alternate modulation 
varying method that may be used in an embodiment of the present invention to wirelessly 
generate a cryptographic key. 

[0019] While the invention will be described in connection with certain preferred 
embodiments, there is no intent to limit it to those embodiments. On the contrary, the intent 
is to cover all alternatives, modifications and equivalents as included within the spirit and 
scope of the invention as defined by the appended claims. 

DETAILED DESCRIPTION OF THE INVENTION 

[0020] Turning to the drawings, wherein like reference numerals refer to like elements, 
the invention is illustrated as being implemented in a suitable computing environment. 
Although not required, the invention will be described in the general context of computer- 
executable instructions, such as program modules, being executed by a personal computer. 
Generally, program modules include routines, programs, objects, components, data 
structures, etc. that perform particular tasks or implement particular abstract data types. 
Moreover, those skilled in the art will appreciate that the invention may be practiced with 
other computer system configurations, including hand-held devices, multi-processor systems, 
microprocessor based or programmable consumer electronics, network PCs, minicomputers, 
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mainframe computers, and the like. The invention may also be practiced in distributed 
computing environments where tasks are performed by remote processing devices that are 
linked through a communications network. In a distributed computing environment, program 
modules may be located in both local and remote memory storage devices. 

[0021] Figure 1 illustrates an example of a suitable computing system environment 100 
on which the invention may be implemented. The computing system environment 100 is 
only one example of a suitable computing environment and is not intended to suggest any 
limitation as to the scope of use or functionality of the invention. Neither should the 
computing environment 100 be interpreted as having any dependency or requirement relating 
to any one or combination of components illustrated in the exemplary operating environment 
100. 

[0022] The invention is operational with numerous other general purpose or special 
purpose computing system environments or configurations. Examples of well known 
computing systems, environments, and/or configurations that may be suitable for use with the 
invention include, but are not limited to, personal computers, server computers, hand-held or 
laptop devices, multiprocessor systems, microprocessor-based systems, set top boxes, 
programmable consumer electronics, network PCs, minicomputers, mainframe computers, 
distributed computing environments that include any of the above systems or devices, and the 
like. 

[0023] The invention may be described in the general context of computer-executable 
instructions, such as program modules, being executed by a computer. Generally, program 
modules include routines, programs, objects, components, data structures, etc. that perform 
particular tasks or implement particular abstract data types. The invention may also be 
practiced in distributed computing environments where tasks are performed by remote 
processing devices that are linked through a communications network. In a distributed 
computing environment, program modules may be located in both local and remote computer 
storage media including memory storage devices. 
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[0024] With reference to Figure 1, an exemplary system for implementing the invention 
includes a general purpose computing device in the form of a computer 1 10. Components of 
computer 110 may include, but are not limited to, a processing unit 120, a system memory 
130, and a system bus 121 that couples various system components including the system 
memory to the processing unit 120. The system bus 121 may be any of several types of bus 
structures including a memory bus or memory controller, a peripheral bus, and a local bus 
using any of a variety of bus architectures. By way of example, and not limitation, such 
architectures include Industry Standard Architecture (ISA) bus, Micro Channel Architecture 
(MCA) bus, Enhanced ISA (EISA) bus, Video Electronics Standards Associate (VESA) local 
bus, and Peripheral Component Interconnect (PCI) bus also known as Mezzanine bus. 

[0025] Computer 110 typically includes a variety of computer readable media. Computer 
readable media can be any available media that can be accessed by computer 1 10 and 
includes both volatile and nonvolatile media, removable and non-removable media. By way 
of example, and not limitation, computer readable media may comprise computer storage 
media and communication media. Computer storage media includes both volatile and 
nonvolatile, removable and non-removable media implemented in any method or technology 
for storage of information such as computer readable instructions, data structures, program 
modules or other data. Computer storage media includes, but is not limited to, RAM, ROM, 
EEPROM, flash memory or other memory technology, CD-ROM, digital versatile disks 
(DVD) or other optical disk storage, magnetic cassettes, magnetic tape, magnetic disk storage 
or other magnetic storage devices, or any other medium which can be used to store the 
desired information and which can be accessed by computer 1 10. Communication media 
typically embodies computer readable instructions, data structures, program modules or other 
data in a modulated data signal such as a carrier wave or other transport mechanism . and 
includes any information delivery media. The term "modulated data signal" means a signal 
that has one or more of its characteristics set or changed in such a manner as to encode 
information in the signal. By way of example, and not limitation, communication media 
includes wired media such as a wired network or direct-wired connection, and wireless media 
such as acoustic, RF, infrared and other wireless media. Combinations of the any of the 
above should also be included within the scope of computer readable media. 
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[0026] The system memory 130 includes computer storage media in the form of volatile 
and/or nonvolatile memory such as read only memory (ROM) 131 and random access 
memory (RAM) 132. A basic input/output system 133 (BIOS), containing the basic routines 
that help to transfer information between elements within computer 110, such as during start- 
up, is typically stored in ROM 131 . RAM 132 typically contains data and/or program 
modules that are immediately accessible to and/or presently being operated on by processing 
unit 120. By way of example, and not limitation, Figure 1 illustrates operating system 134, 
application programs 135, other program modules 136, and program data 137. 

[0027] The computer 1 10 may also include other removable/non-removable, 
volatile/nonvolatile computer storage media. By way of example only, Figure 1 illustrates a 
hard disk drive 141 that reads from or writes to non-removable, nonvolatile magnetic media, 
a magnetic disk drive 151 that reads from or writes to a removable, nonvolatile magnetic disk 
152, and an optical disk drive 155 that reads from or writes to a removable, nonvolatile 
optical disk 156 such as a CD ROM or other optical media. Other removable/non-removable, 
volatile/nonvolatile computer storage media that can be used in the exemplary operating 
environment include, but are not limited to, magnetic tape cassettes, flash memory cards, 
digital versatile disks, digital video tape, solid state RAM, solid state ROM, and the like. The 
hard disk drive 141 is typically connected to the system bus 121 through a non-removable 
memory interface such as interface 140, and magnetic disk drive 151 and optical disk drive 
155 are typically connected to the system bus 121 by a removable memory interface, such as 
interface 150. 

[0028] The drives and their associated computer storage media discussed above and 
illustrated in Figure 1, provide storage of computer readable instructions, data structures, 
program modules and other data for the computer 110. In Figure 1, for example, hard disk 
drive 141 is illustrated as storing operating system 144, application programs 145, other 
program modules 146, and program data 147. Note that these components can either be the 
same as or different from operating system 134, application programs 135, other program 
modules 136, and program data 137. Operating system 144, application programs 145, other 
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program modules 146, and program data 147 are given different numbers hereto illustrate 
that, at a minimum, they are different copies. A user may enter commands and information 
into the computer 1 10 through input devices such as a keyboard 162 and pointing device 161, 
commonly referred to as a mouse, trackball or touch pad. Other input devices (not shown) 
may include a microphone, joystick, game pad, satellite dish, scanner, or the like. These and 
other input devices are often connected to the processing unit 120 through a user input 
interface 160 that is coupled to the system bus, but may be connected by other interface and 
bus structures, such as a parallel port, game port or a universal serial bus (USB). A monitor 
191 or other type of display device is also connected to the system bus 121 via an interface, 
such as a video interface 190. In addition to the monitor, computers may also include other 
peripheral output devices such as speakers 197 and printer 196, which may be connected 
through a output peripheral interface 195. 

[0029] The computer 110 may operate in a networked environment using logical 
connections to one or more remote computers, such as a remote computer 180. The remote 
computer 180 may be another personal computer, a server, a router, a network PC, a peer 
device or other common network node, and typically includes many or all of the elements 
described above relative to the personal computer 110, although only a memory storage . 
device 181 has been illustrated in Figure 1. The logical connections depicted in Figure 1 
include a local area network (LAN) 171 and a wide area network (WAN) 173, but may also 
include other networks. Such networking environments are commonplace in offices, 
enterprise-wide computer networks, intranets and the Internet. 

[0030] When used in a LAN networking environment, the personal computer 1 10 is 
connected to the LAN 171 through a network interface or adapter 170. When used in a WAN 
networking environment, the computer 1 10 typically includes a modem 172 or other means 
for establishing communications over the WAN 173, such as the Internet. The modem 172, 
which may be internal or external, may be connected to the system bus 121 via the user input 
interface 160, or other appropriate mechanism. In a networked environment, program 
modules depicted relative to the personal computer 1 10, or portions thereof, may be stored in 
the remote memory storage device. By way of example, and not limitation, Figure 1 
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illustrates remote application programs 185 as residing on memory device 181. It will be 
appreciated that the network connections shown are exemplary and other means of 
establishing a communications link between the computers may be used. 

[0031] With particular applicability to the system and method of the present invention, 
the device 100 is configured as a wireless mobile device. To that end, the device 100 is 
provided with a portable power source 120, such as a battery pack, a fuel cell, or the like. 
The power source 120 provides power for computations and wireless data transmissions by 
the device 100. As shown in FIG. 2, the wireless computing device 100 may include a 
network interface card (NIC) 201 for wirelessly communicating with different types of 
wireless networks. The NIC 201 includes a transmitter 122, which is coupled to an antenna 
206 for transmitting data wirelessly over a suitable frequency channel. A receiver 126 is also 
coupled to the antenna 206 for receiving communication packets wirelessly transmitted from 
the networks that the device is communicating with. The network interface module 201 and 
the antenna 206 are part of the communication connections 1 12 in FIG. 1. In one 
embodiment, the network interface module 201 employs wireless configuration service over 
the IEEE 802.1 1 wireless connections to ease network configuration, including infrastructure 
networks and ad hoc networks. An exemplary network interface module is PCMCIA 
wireless card. It will be appreciated that the interface type and physical configuration of the 
network interface module is not critical to the invention. For instance, the interface type 
could be PCI or another type and the network interface module does not have to reside on a 
separate card. It may be included on the motherboard of the computer or even possibly built 
into the processor in the future. 

[0032] Through the wireless network interface module, the wireless computing device 
100 may communicate with different types of wireless networks. For instance, in the 
illustrated environment of FIG. 2, the wireless device 100 may be connected wirelessly to an 
infrastructure network 230 through an access point 23 1 thereof. The wireless device 100 may 
also be part of a peer-to-peer network 220, also referred to as an ad hoc network, that 
includes other wireless devices, such as the wireless devices 221, 222, and 223. Before 
connecting to either the access point 231 of the infrastructure network or the ad hoc network 
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220, the wireless device 100 may be in a state of searching for devices that belong to the 
network by periodically scanning actively by sending probe requests and scanning for probe 
response signals transmitted by the access point or other devices. Alternatively, the wireless 
device 100 may search passively by scanning for beacons transmitted by Access Points. A 
network driver 208 controls the operation of the network interface module 201. The network 
driver 208 is either part of the operating system of the wireless device 100 or a separate 
executable program running on the wireless device 100. 

[0033] In the description that follows, the invention will be described with reference to 
acts and symbolic representations of operations that are performed by one or more computer, 
unless indicated otherwise. As such, it will be understood that such acts and operations, 
which are at times referred to as being computer-executed, include the manipulation by the 
processing unit of the computer of electrical signals representing data in a structured form. 
This manipulation transforms the data or maintains it at locations in the memory system of 
the computer, which reconfigures or otherwise alters the operation of the computer in a 
manner well understood by those skilled in the art. The data structures where data is 
maintained are physical locations of the memory that have particular properties defined by 
the format of the data. However, while the invention is being described in the foregoing 
context, it is not meant to be limiting as those of skill in the art will appreciate that various of 
the acts and operation described hereinafter may also be implemented in hardware. 

[0034] The concept of communicating digital data, at the abstract level, consists of host A 
300 wanting to send a stream of data to host B 302 over some physical media. This is shown 
in simplified fashion in FIG. 3. A physical media is often called a physical channel 304. 
Typical examples of physical channels 302 include optical fiber, copper wire, coaxial cable, 
and free space for wireless, acoustic, infrared (IR) and the like transmissions. 

[0035] In most digital communications systems, Host A 300 is not able to connect 
directly to Host B 302 without some form of initializing handshake. As discussed above, 
Host A 300 and B 302 may also want to communicate in secret. Therefore, Host A 300 and 
Host B 302 must develop a way to communicate using the same "language". Preferably, this 
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"language" cannot be understood by any malicious third party eavesdropper. Host to host 
communication is illustrated generically using the International Organization for 
Standardization (ISO) references in FIG. 4. While a discussion of this well known model is 
avoided here in the interest of brevity, the following discussion will utilize this model to 
describe various aspects of the present invention. 

[0036] The system and methods of the present invention deal primarily with establishing 
the synchronization, and varying the use, of the physical layer device (PHY) layer 400 A , 400 B 
and Link layer 402 A , 402 B for Host A 300 and Host B 302. Specifically, present invention 
matches the PHY layers 400 A , 400 B and the link layers 402 A , 402 B for signal for transmission 
to the channel being used at any given time, and varies the channel, modulation technique, 
etc. over time in order to provide for secure communication as will be described more fully 
below. 

[0037] A typical communications block diagram for the PHY and Link layers for digital 
communications is shown in FIG. 5. In this figure, the information flow illustrated is from 
Host A 300 via physical channel 304 to Host B 302, although those skilled in the art will 
recognize that the communications flow may occur, and usually does, in both directions. As 
illustrated, information source 500 provides the information to be communicated to Host B 
302 to a source encoder 502. Once the information has been encoded, it is passed to 
encryption block 504 wherein the information is encrypted, preferably with a shared secret or 
key generated as discussed more fully below. This encrypted information is then passed to an 
error correction encoder 506, and from there to the baseband modulator 508 which modulates 
the encrypted information for transmission by the radio frequency (RF) front end transmitter 
501. The modulated, encrypted information is transmitted through the physical channel 304. 

[0038] At Host B 302, the wirelessly transmitted information is received from the 
physical channel 304 by the RF receiver 512. At the receiver the modulated signal is noisy 
and distorted due to channel and receiver impairments. Once received, the signal containing 
the information is passed to the baseband demodulator 5 14 and the forward error correction 
(FEC) decoder 516 so that errors due to the noise and distortions are corrected if the number 
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of errors is not too high. The information is then decrypted via decryption block 518. This 
decrypted information is then passed to a source decoder 520. The source decoder 
decompresses the information. At this point, the information is in a form that may be used 
522 by Host B. 

[0039] Advantageously, the communicators (Host A 300 and Host B 302) have available 
a set of constellations or modulations that may be used for transmission of the information 
through the physical channel. In wireless communication standards, such as 802.1 la, 
802.1 lg, and HiperLAN2, the following Table 1 presents the constellations available for 
transmission. 
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[0040] These modulation schemes carry the information in the phase of the carrier. For 
example and as is well know in the art, in binary phase shift keying (BPSK), to transmit a "0" 
the phase of the transmitted signal is 0°, and to transmit a "1 " the phase of the transmitted 
signal is 180° (or k radians). This is shown in FIG. 6. In quadrature phase shift keying 
(QPSK) modulation two bits at a time are represented as a point on the phase space as shown 
in FIG. 7. For example, to transmit a "01" using QSPK modulation, the phase of the 
transmitted signal is 90°, and to transmit a "11" the phase of the transmitted signal is 180°. 
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[0041] As will be recognized from the foregoing description, the encryption/decryption 
blocks 504/518 in FIG. 5 provide data integrity, that is secrecy, to communicated packets. 
There are two methods to perform such a task, to wit public key cryptography, and private 
key (or symmetric) cryptography. Private key methods are in common use in wireless 
systems. As the name indicates, there is a need to have two identical keys at the encryption 
block 504 and at the decryption block 518. These keys are used to generate what is called 
cipher text at the output of the encryption, and plain text at the output of the decryption. 

[0042] One of the most important and difficult issues in secure communications, 
however, is key distribution. As discussed above, the prior methods of distribution were 
based on certificates, required that wired communications preceded secured wireless 
communications, or the keys were inserted in a smart card and physically distributed. Other 
methods utilized private keys that are provided by a trusted party. All these methods are 
limited as indicated above. However, through the system and methods of the present 
invention two users can perform secure communications without first having to worry about 
passing the shared key. The invention in particular makes use of two elements of the digital 
communications system shown in FIG. 5, to wit the randomness of the noise in the radio 
channel, and the set of Baseband modulation schemes available at the Baseband modulator 
508 and Baseband demodulator 514, e.g. those illustrated above in Table 1. 

[0043] Specifically, the system and methods of the present invention take advantage of 
the availability of these varied constellations or modulation schemes to wirelessly establish 
secure key agreement between Host A and Host B. That is, the system and methods of the 
present invention utilize a random selection of the modulation used for the transmission of 
each packet of data between Host A and Host B. For example, one packet of information 
may be transmitted using 16 quadrature amplitude modulation (QAM), while at another time 
the modulation is 8 phase shift keying (PSK), then followed by 64 QAM, and so forth. An 
adversary trying to decode the information being transmitted utilizing these schemes would 
have to guess which scheme is being selected for each data packet. Recognizing the large 
number of modulation techniques available, there is a high probability that such a malicious 
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eavesdropper would arrive at a cryptographic sequence mismatched with the right one. As 
such, this malicious party would not be able to arrive at the right key that is derived from the 
data transferred in this manner. Once the key exchange/generation is complete, the hosts can 
select an optimized modulation technique for their wireless session and simply encrypt all 
transmissions during this wireless session with the exchanged or generated key as will be 
discussed more fully below. 

[0044] In accordance with one embodiment of the present invention, the two hosts are 
able to determine what modulation scheme to use for the transmission of each subsequent 
packet by dictating to the other user what technique to select in the next transmission. This 
technique is illustrated in FIG. 8. In this exemplary embodiment of the present invention, the 
length of the key to be generated requires the transmission of a number of bits (Bj, B 2 , . . . 
B N ). Host A 300 and Host B 302 use a set of modulation schemes for each transmission 
indexed by {M 0 , M u . . . M N }. Host A 300 and Host B 302 share a short key in advance 
established by public key methods such as Diffie-Hellman key exchange method, or using 
Kerberos. This short key is an index to what signal constellation is used initially (Mo). M 0 = 
b(n0) is a binary representation of integer nO where: 

1< nO < Number of constellations available . Preferably, there is a one-to-one mapping 
between the integers and the signal constellations so that each host is able to properly initially 
transmit and receive using the proper modulation scheme or constellation M 0 . 

[0045] Once the initial modulation scheme has been determined, Host A 300 transmits an 
initial bit (B 0 ) to be used to generate the key (Ki) to be used to encrypt the wireless data to be 
exchanged during the wireless session to Host B 302a using M 0 . This is represented in FIG. 
8 as (B 0 Mo). It is noted that Bo (as well as subsequent transmissions Bj, B 2 , . . .B N ) may be a 
single bit, or a grouping of multiple bits depending on which modulation scheme is selected, 
as will be made clear though an example discussed below. Host B knowing a priori M 0 will 
be able to demodulate this first transmission on the channel to determine Bo. This first 
transmission ends with an index Mi pointing to the next modulation scheme that user B must 
use. Mi can be chosen in one embodiment randomly as a function of the output of a 
pseudorandom noise generator. In this embodiment, let the notation <a b> of two sequences 
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a and b denote the concatenation of the two bit streams; then Mi must meet the constraint that 
the length of sequence <MoMi> is less than or equal to the key length. 

[0046] Host B 302 transmits data to user A using the modulation mapped by b(nl), 
designated Mi in FIG. 8. Host A 300 knows that user B is using modulation Mj since Host A 
300 requested that modulation from Host B 302. Therefore, Host A 300 will be able to 
demodulate the data (B,) from Host B 302. The packet ends with index M 2 pointing to the 
next modulation scheme requested by Host B 302 from Host A 300. The constraint on M 2 is 
the that the length of the sequence <M 0 Mi M 2 > is less than or equal to the key length. This 
process continues until the number of bits passed is equal to the number of bits required to 
generate the cryptographic key to be used to encrypt the wireless communications during the 
wireless session. At a stage i the following constraint holds: <M 0 Mi ... Mj> is a sequence of 
length less than or equal to the key length. As such, M N will be constrained with <M 0 Mi . . . 
M N > is a sequence equal to the key length. 

[0047] In this online cryptographic key generation scheme, the Hosts 300, 302 are 
interested in secure communications, and not the total throughput of the system. That is, the 
choice of modulation is to confuse a third party, not to match the modulation to the channel. 
However, once the cryptographic key K, has been generated, the Hosts 300, 302 can use this 
key Kj to encrypt all data in their wireless session. With the data safely encrypted, the Hosts 
300, 302 can pick a modulation scheme M x that is matched or optimized to the channel. This 
encrypted, optimized data transmission is illustrated in FIG. 8 as the transmission of a data 
packet Pi from Host A 300 to Host B 302 encrypted with the online generated key Ki and 
modulated using the optimized modulation scheme M x as PiKiM x . Host B 302 replies with 
data Qi encrypted with key Ki and modulated with the optimized modulation scheme M x 
represented as QiKiM x . 

[0048] As is now apparent, both Host A 300 and Host B 302 used constellations M 0 , M u 
M 2 , . . . M N . The integer N is determined by the length of the key to be generated. During 
each stage of transmitting a modulation symbol, both Host A 300 and Host B 302 keep count 
of the total number of bits buffered from time 0. The total number of bits will have to add up 
to the total number of bits needed for the key generation. For example, assume the two Hosts 
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300, 302 want to transmit 10 bits to be used to generate the key Ki. In this example also 
assume that Host A 300 and Host B 302 agree that initial key modulation scheme Mo is 
QPSK. Host A 300 sends data to Host B 302 using QPSK. The end of the data, Host A 300 
requests that Host B 302 transmit data to Host A 300 using BPSK modulation. Since QPSK 
transmits two bits at a time (see FIG. 7), the total count of bits at this stage is two, leaving 
eight more bits to be exchanged before the key Ki can be generated. These bits in this 
example are 0 and 1 such that the accumulation of bits equals [0 1]. 

[0049] Host B 302 sends data to Host A 300 using BPSK as requested by Host A 300. At 
the end of the data, Host B 302 asks Host A to use 16 QAM modulation. The total number of 
bits accumulated at this point is three, which is equal to the previous two bits plus the extra 
bit (0) transmitted using BPSK, i.e. BPSK transmits a single bit at a time as illustrated in FIG. 
6. The accumulation of bits at both Hosts is now equal to [0 10]. Host A 300 next sends 
data to Host B 302 using 16 QAM modulation and requests that Host B 302 transmit in the 
next round using 8 PSK. The total number of bits at this point is equal to seven since four 
more bits (1001) are added due to the 16 QAM modulation. The accumulation of bits a both 
Hosts is now equal to [0 1 0 1 0 0 1]. At this point three bits are needed to complete the total 
exchange often bits, and the last transmission is coming up. Therefore, the request is forced 
to 8 PSK. Host B 302 sends packets to Host A 300 using 8 PSK. The 8 PSK adds an 
additional 3 bits (101) for a total of 10 bits accumulated, which is the number required for 
key generation in this exemplary embodiment. The accumulation of bits at both Hosts is now 
[010 100 1101]. 



[0050] The total number of bits in this example is 2 + 1+ 4 + 3 = 10 bits. Table 2 below 
shows the decoded bits for the intended users and what bits an adversary has to choose from. 





QPSK 


BPSK 


16QAM 


8PSK 


User bits 


0 1 


0 


1001 


101 


Adversary 


0 


0 


0 


0 


possible bits 


1 


1 


1 


1 




00 


00 


00 


00 




01 


01 


01 


01 




10 


10 


10 


10 




11 


11 


11 


11 
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000 


000 


000 


000 


001 


001 


001 


001 


010 


010 


010 


010 


Oil 


Oil 


Oil 


on 


100 


100 


100 


100 


101 


101 


101 


101 


110 


110 


110 


no 


111 


111 


111 


111 


0000 


0000 


0000 


0000 


0001 


0001 


0001 


0001 


0010 


0010 


0010 


0010 


0011 


0011 


0011 


0011 


0100 


0100 


0100 


0100 


0101 


0101 


0101 


0101 


0110 


0110 


0110 


0110 


0111 


0111 


0111 


0111 


1000 


1000 


1000 


1000 


1001 

1 \J\J 1 


1001 


1 001 


1001 


1010 


1010 


1010 


1010 


1011 


1011 


1011 


1011 


1100 


1100 


1100 


1100 


1101 


1101 


1101 


1101 


1110 


1110 


1110 


1110 


mi 


1111 


mi 


mi 



Table 2 



[0051] In this simple example where only BPSK, QPSK, 8PSK, and 16 QAM modulation 
is used, it is noted that the intended users sequence is (with high probability) equal to [0 1 0 1 
0 0 110 1]. This can be the cryptographic key used to encrypt the subsequent data in the 
wireless communication session. However, the adversary is forced to look at all possible 
combinations of the packets as indicated in the Table 2 above. The number of combinations 
can be very large for 1500 bit packets, resulting in a high probability that an adversary will 
not be able to maliciously break the encryption for the subsequent wireless session. 

[0052] FIG. 9 illustrates an alternate exemplary embodiment of the present invention 
wherein the assignment of bit values for a given constellation is varied as opposed to or in 
addition to the variation in the constellation itself to form the different modulation schemes. 
That is, while still using, for example, QPSK modulation, the Hosts can agree on a 
reassignment of the bit values for a given phase transmission. In the first graph governing a 
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first transmission, the bit value of [1 1] is given to a phase displacement of 180°, while the 
same displacement in the second transmission is governed by the bit assignments illustrated 
in the second graph, to wit [1 0]. Without knowing the bit reassignment scheme, a malicious 
third party eavesdropper will not be able to determine the bits transmitted, even if this 
malicious third party were demodulating the transmission using the correct constellation, for 
example QPSK illustrated in FIG. 9. As such, the term modulation scheme as used herein 
includes the constellation and/or the bit assignment scheme. 

[0053] The foregoing description of various embodiments of the invention has been 
presented for purposes of illustration and description. It is not intended to be exhaustive or to 
limit the invention to the precise embodiments disclosed. Numerous modifications or 
variations are possible in light of the above teachings. The embodiments discussed were 
chosen and described to provide the best illustration of the principles of the invention and its 
practical application to thereby enable one of ordinary skill in the art to utilize the invention 
in various embodiments and with various modifications as are suited to the particular use 
contemplated. All such modifications and variations are within the scope of the invention as 
determined by the appended claims when interpreted in accordance with the breadth to which 
they are fairly, legally, and equitably entitled. 



